What is the difference between the several validation procedures?


There are different levels of validation. The difference between them is based on the way they validate the requester.

  1. Domain Validation (DV)
    This is the most basic, automated validation. Requester must prove that they have administrative rights for the domain (for example, by creating an e-mail address or adding a new domain record).It is the fastest way to get a signed certification that will not display a warning in the internet browsers, it takes only a few hours to do the validation.

    On the other hand it is not as secure as the other methods. Some certification issuers do not even do DV.

  2. Organisation Validation (OV)
    In this method, the certification signer always makes sure that the person or organisation requesting the signature is the registered owner of the domain. This is a manual validation that usually happens over the phone.It is a much more secure certification than the DV because it is not possible to request such a certificate on someone else’s behalf.
    On the other hand, it usually takes days and, as it is a manual verification, it has a higher price than the DV.
  3. Extended Validation (EV)
    When using this method of validation, the requester is subject to the strictest verification. The certification signer runs a thorough background check (for example, they make sure the organisation requesting the signature do really run the business that they say).This is the most secure of all methods and modern browsers show a green address bar and display the name of the certification holder company, guaranteeing the user that they are on a well-secured website.

    EV however takes weeks to obtain and as this is a very thorough check, it also comes with the highest price. The main users of this validation method are banks and companies who are considered to have a high risk of IT attacks.